From d14b82a7cc11d9463d38d6656e0bc7084c34471f Mon Sep 17 00:00:00 2001
From: Silvio Rhatto <rhatto@riseup.net>
Date: Thu, 16 Jun 2016 18:53:55 -0300
Subject: Adds initial Let's Encrypt support via certbot

---
 manifests/certbot.pp | 19 +++++++++++++++++++
 1 file changed, 19 insertions(+)
 create mode 100644 manifests/certbot.pp

(limited to 'manifests/certbot.pp')

diff --git a/manifests/certbot.pp b/manifests/certbot.pp
new file mode 100644
index 0000000..e024b32
--- /dev/null
+++ b/manifests/certbot.pp
@@ -0,0 +1,19 @@
+define nginx::certbot(
+  $aliases = ''
+  $ensure  = 'present',
+  $email   = hiera('nginx::certbot::email'),
+  $size    = hiera('nginx::certbot::size', '4096'),
+){
+  # Certbot support
+  file { "/var/www/certbot/${name}":
+    ensure  => $ensure,
+    owner   => 'root',
+    group   => 'www-data',
+    mode    => '0750',
+    require => Package['certbot'],
+  }
+
+  exec { "certbot-${name}":
+    command => "/usr/bin/certbot certonly --webroot -w /var/www/certbot/${name} -d ${name} -m ${email} --rsa-key-size ${size} --agree-tos",
+  }
+}
-- 
cgit v1.2.3